38 messages in ru.sysoev.nginxRe: Nginx - Google Summer of Code ideas
FromSent OnAttachments
C.Mar 10, 2009 4:50 am 
mikeMar 10, 2009 11:00 am 
mikeMar 10, 2009 11:15 am 
C.Mar 10, 2009 11:54 am 
Valery KholodkovMar 10, 2009 12:36 pm 
C.Mar 10, 2009 1:02 pm 
Valery KholodkovMar 10, 2009 1:26 pm 
Manlio PerilloMar 11, 2009 10:49 am 
mikeMar 11, 2009 1:15 pm 
Johan BergströmMar 11, 2009 2:36 pm 
qybMar 11, 2009 5:19 pm 
Maxim DouninMar 11, 2009 6:02 pm 
danielMar 12, 2009 3:03 am 
张立冰Mar 12, 2009 3:25 am 
Huy PhanMar 12, 2009 5:17 am 
张立冰Mar 12, 2009 6:23 am.gif
张立冰Mar 12, 2009 6:30 am.gif
Huy PhanMar 12, 2009 7:47 am 
mikeMar 12, 2009 9:10 am 
C.Mar 12, 2009 11:46 am 
mikeMar 12, 2009 12:35 pm 
mikeMar 12, 2009 12:37 pm 
Michael BaudinoMar 12, 2009 4:51 pm 
MerlinMar 12, 2009 6:39 pm 
Maxim DouninMar 13, 2009 4:43 am 
Valery KholodkovMar 13, 2009 7:20 am 
Marcus ClyneMar 13, 2009 7:58 am 
Maxim DouninMar 13, 2009 8:14 am 
Valery KholodkovMar 13, 2009 8:36 am 
Maxim DouninMar 13, 2009 9:05 am 
Valery KholodkovMar 13, 2009 9:52 am 
Michael BaudinoMar 13, 2009 11:03 am 
Valery KholodkovMar 13, 2009 11:54 am.patch
MerlinMar 13, 2009 11:55 am 
Manlio PerilloMar 14, 2009 8:00 am 
mikeMar 14, 2009 10:02 am 
Manlio PerilloMar 21, 2009 4:42 pm 
mikeMar 21, 2009 5:16 pm 
Actions with this message:
Paste this link in email or IM:
Paste this link in email or IM:
Atom feed for this thread
Paste this URL into your reader:
Subject:Re: Nginx - Google Summer of Code ideasActions...
From:张立冰 (zhan@gmail.com)
Date:Mar 12, 2009 6:30:26 am
List:ru.sysoev.nginx
Attachments:

And here is a post about this topic. http://www.libing.name/2008/11/23/nginx-application-access.html I'm sorry, it is in Chinese. But I think the script at this page will helpful for you.

2009/3/12 张立冰 <zhan@gmail.com>

Hi,Huy Phan.

Wow, we did the same job. [?]

2. When the request is valid (the token is exist), it returns 404, and then

internal redirect to the 'real' place => If someone knows the url of real place, he can access without any authentication.

Yes, I hook the http status 404, and redirect to the 'real' place at the backend. BUT this place must be placed at intranet or the same server, just like 127.0.0.1.And that is the trust environment. ^_^

I have placed a simple conf at this page.( http://www.libing.name/2009/03/11/nginx-token-module.html).

http://thread.gmane.org/gmane.comp.web.nginx.english/10008

http://thread.gmane.org/gmane.comp.web.nginx.english/10379

I have checked those two posts.It seems you want a module to do the access check job for media files.(/v/empty.flv?token=1234). And I think there is no need memcached to store the check token. Maybe you can work with http access key
module<http://www.nginx-community.org/NginxHttpAccessKeyModule> and mod_parsed_vars <http://hg.mperillo.ath.cx/nginx/mod_parsed_vars>to generate dynamic token with COOKIE/GET/POST vars. Just like sessionid.And that is betteeeer than work with memcached.

On Thu, Mar 12, 2009 at 8:17 PM, Huy Phan <dac@gmail.com> wrote:

张立冰 <zhang.libing@...> writes:

Digest Authentication?

I have Implemented a simple token module, used for http authentication

with backend memcached. Maybe that is helpful for you.

Hi zhang, really interesting to see your modules, the idea is exactly what im trying to do these 2 weeks. What I see after checking your code is that : 1. If the token is invalid : return 403, otherwise 404. 2. When the request is valid (the token is exist), it returns 404, and then internal redirect to the 'real' place => If someone knows the url of real place, he can access without any authentication.

I had develop a module similar like that ( in fact I see that we have 80% same code ), but the process is a little different. Can you take a look at these threads and we can work on it together :)

http://thread.gmane.org/gmane.comp.web.nginx.english/10008 http://thread.gmane.org/gmane.comp.web.nginx.english/10379

-- The time you enjoy wasting is not wasted time!

-- The time you enjoy wasting is not wasted time!